Gitiles
Code Review Sign In
gerrit.omnirom.org / android_hardware_libhardware / 1f4800f20a5c2fca10a6def54baa6ff9b07fb43c^! / .
commit1f4800f20a5c2fca10a6def54baa6ff9b07fb43c[log] [tgz]
authorPaul Crowley <paulcrowley@google.com>Wed Feb 10 11:38:39 2021 -0800
committerPaul Crowley <paulcrowley@google.com>Thu Feb 18 09:50:56 2021 -0800
tree2566704ee173076e7459c4dfd68bede55dd186ca
parent41e68bfb1161a325168d185fe467c8b4ced1d2c9 [diff]
Add MAX_BOOT_LEVEL tag, BOOT_LEVEL_EXCEEDED error

Test: Treehugger
Bug: 176450483
Change-Id: Ibfc838496fec507dbe4831e86b933666296a4b35

diff --git a/include/hardware/keymaster_defs.h b/include/hardware/keymaster_defs.h
index 49f65a9..c0b3800 100644
--- a/include/hardware/keymaster_defs.h
+++ b/include/hardware/keymaster_defs.h

@@ -212,8 +212,8 @@
                                                         The value should interpreted as too's
                                                         complement signed integer. Negative values
                                                         indicate dates before Jan 1970 */
-
-
+    KM_TAG_MAX_BOOT_LEVEL = KM_UINT | 1010, /* Specifies a maximum boot level at which a key
+                                               should function. */
 } keymaster_tag_t;
 
 /**
@@ -512,6 +512,7 @@
     KM_ERROR_MISSING_NOT_AFTER = -81,
     KM_ERROR_MISSING_ISSUER_SUBJECT = -82,
     KM_ERROR_INVALID_ISSUER_SUBJECT = -83,
+    KM_ERROR_BOOT_LEVEL_EXCEEDED = -84,
 
     KM_ERROR_UNIMPLEMENTED = -100,
     KM_ERROR_VERSION_MISMATCH = -101,